Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: PsBxXnoWXwzjgpSHkeBlFb0NwQOvVzw0t0G1jDwZ11Y=
Subject key identifier: 4A:0D:1C:0C:DA:26:09:45:38:F6:58:56:DA:99:69:87:F2:D9:99:46
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 019A274206441AADEEA547AF3F88076852AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0D7C
Signing time: Mon 27 Oct 2025 20:00:29 +0000
Manifest this update: Mon 27 Oct 2025 20:00:29 +0000
Manifest next update: Tue 28 Oct 2025 20:00:29 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: N+57H05JtGNnAdjt1/bns2IcMpH1+gtM2Khi06kVE54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 20:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:42:06:44:1a:ad:ee:a5:47:af:3f:88:07:68:52:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Oct 27 20:00:29 2025 GMT
Not After : Oct 28 20:00:29 2025 GMT
Subject: CN=4a0d1c0cda26094538f65856da996987f2d99946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:55:5d:ff:9f:db:96:ac:02:e7:9f:b7:97:ec:
f3:63:57:1a:ac:bd:9b:36:6a:24:d2:db:20:25:54:
83:bc:51:9d:93:5f:30:ca:b7:1f:08:b6:93:9b:c3:
2b:c7:96:a3:fd:63:80:2f:1b:3b:9b:a7:07:a2:5d:
2e:9e:b7:fd:c2:11:d4:a7:9e:05:88:9c:de:69:1d:
65:e1:d3:1e:f3:af:6b:09:d4:e4:62:75:63:d0:3d:
04:14:e7:fc:49:33:36:a9:ba:16:85:84:47:4e:ca:
1e:66:9c:9f:f8:71:93:e8:b0:ee:27:fc:02:34:da:
7e:96:ee:78:a0:3b:44:64:00:c0:e6:9f:25:e5:1f:
df:b6:3e:ff:1b:24:c5:b1:76:61:ff:ed:eb:a1:26:
b6:d1:9d:15:dc:38:5b:0f:31:c2:f1:87:18:fa:8b:
4f:b2:f2:f1:9b:1d:a1:28:58:c1:9f:b1:2c:a5:57:
17:74:80:ff:2d:ca:88:d9:83:b2:fa:72:97:b3:7a:
5f:6d:ae:0e:6d:4c:d0:ba:03:1b:ad:49:de:1e:97:
ee:c6:85:21:e3:d4:91:bb:8a:27:6e:b5:e0:ac:fd:
99:c8:a9:2a:4a:f9:14:be:2a:61:92:1a:02:9e:96:
92:bc:55:5f:7b:2b:29:ad:0c:1c:7f:87:55:49:11:
1a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0D:1C:0C:DA:26:09:45:38:F6:58:56:DA:99:69:87:F2:D9:99:46
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:b7:32:02:4c:75:5b:8a:a2:d9:58:f0:ef:11:9e:f9:2a:4d:
18:ee:91:7d:34:1f:4f:79:21:cc:87:f3:71:a2:33:ed:8a:cb:
fb:77:c5:ea:b4:69:dc:c8:42:04:43:d1:89:27:67:15:a8:ff:
52:9c:15:3c:89:80:b5:33:73:0a:f6:16:d1:82:8f:3c:33:82:
8c:0f:ec:45:b3:db:fe:0e:a9:34:ba:89:d0:19:6c:ca:d3:5a:
28:6b:7d:98:25:cb:f6:39:7d:61:0d:d4:c2:72:89:e7:d8:87:
39:b5:b1:d8:28:cb:c0:19:b2:c0:f1:a0:68:87:67:da:a7:06:
76:9e:6d:6e:17:67:55:bc:01:42:42:02:f4:d7:f3:cf:da:de:
30:bc:e2:63:d7:a2:ff:f9:2d:9b:65:38:52:de:bb:30:ef:51:
49:60:79:f3:df:cd:c1:21:5f:f9:c9:d9:3a:31:3e:4a:8c:1c:
2f:2f:44:8e:91:6a:6d:56:1c:ea:d6:0d:0c:fe:a3:4a:63:95:
14:98:0d:76:99:56:b0:d4:8c:cb:2a:92:4f:db:58:85:f3:80:
10:16:68:8b:78:99:37:a3:da:ca:c2:db:27:5d:9f:10:59:35:
07:66:c3:ac:17:68:11:47:71:d1:2a:8a:5e:10:a5:17:b9:de:
dc:0e:99:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZonQgZEGq3upUevP4gHaFKrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjZTQ1ZmQ2ZmQzZDkzMjY4NGMwYzViYzI3ZjRmYTYxNWEx
MDkwZTAwHhcNMjUxMDI3MjAwMDI5WhcNMjUxMDI4MjAwMDI5WjAzMTEwLwYDVQQD
Eyg0YTBkMWMwY2RhMjYwOTQ1MzhmNjU4NTZkYTk5Njk4N2YyZDk5OTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFVd/5/blqwC55+3l+zzY1carL2b
Nmok0tsgJVSDvFGdk18wyrcfCLaTm8Mrx5aj/WOALxs7m6cHol0unrf9whHUp54F
iJzeaR1l4dMe869rCdTkYnVj0D0EFOf8STM2qboWhYRHTsoeZpyf+HGT6LDuJ/wC
NNp+lu54oDtEZADA5p8l5R/ftj7/GyTFsXZh/+3roSa20Z0V3DhbDzHC8YcY+otP
svLxmx2hKFjBn7EspVcXdID/LcqI2YOy+nKXs3pfba4ObUzQugMbrUneHpfuxoUh
49SRu4onbrXgrP2ZyKkqSvkUviphkhoCnpaSvFVfeysprQwcf4dVSREaoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEoNHAzaJglFOPZYVtqZaYfy2ZlGMB8GA1UdIwQY
MBaAFPzkX9b9PZMmhMDFvCf0+mFaEJDgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iZjVhNjQtOGFhZi00NGE4LWJhY2Ut
MzY4NTBkZjRlOTk3LzEvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9iZjVhNjQtOGFhZi00NGE4LWJhY2UtMzY4NTBkZjRlOTk3
LzEvX09SZjF2MDlreWFFd01XOEpfVDZZVm9Ra09BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACLcyAkx1
W4qi2Vjw7xGe+SpNGO6RfTQfT3khzIfzcaIz7YrL+3fF6rRp3MhCBEPRiSdnFaj/
UpwVPImAtTNzCvYW0YKPPDOCjA/sRbPb/g6pNLqJ0BlsytNaKGt9mCXL9jl9YQ3U
wnKJ59iHObWx2CjLwBmywPGgaIdn2qcGdp5tbhdnVbwBQkIC9Nfzz9reMLziY9ei
//ktm2U4Ut67MO9RSWB589/NwSFf+cnZOjE+SowcLy9EjpFqbVYc6tYNDP6jSmOV
FJgNdplWsNSMyyqST9tYhfOAEBZoi3iZN6PaysLbJ12fEFk1B2bDrBdoEUdx0SqK
XhClF7ne3A6ZXg==
-----END CERTIFICATE-----
Generated at Tue Oct 28 04:44:27 2025 by rpki-client